> CommCell Console > Backup and Restore Agents > Cloud Apps > Azure Blob Storage > Configuration > Virtual Clients

Creating an Azure Blob Storage Virtual Client with IAM AD Application

To back up an Azure Blob Storage account using non-Azure virtual machines (VM) as access node, create an Azure Active Directory (AD) application, and then assign the storage blob data owner role to that AD application at the Azure storage account level. Then, use the IAM AD role assignment type of authentication to add a virtual client.

Create an Azure AD Application with Storage Blob Data Owner Role

  1. On the Azure portal, create an Azure AD application.

  2. Generate and save a client secret for the Azure AD application.

  3. Note down the application ID and the tenant ID of the application that you created.

  4. Assign the storage blob owner role to the Azure AD application that you created, at storage account level.

Creating a Virtual Client with IAM AD Application

  1. From the CommCell Browser, right-click Client Computers, and then click New Client > Cloud Storage > Azure BLOB.

    The New Azure Storage Client dialog box appears.

  2. On the General tab, provide the following details:

    1. In the Client Name box, type a name for the new virtual client.

    2. In the Instance Name box, type a name for the instance.

    3. In the Access Node box, select one or more proxy client computers or the client group where the Cloud Apps package is installed.

      Note

      • The proxy client computers must be of similar operating system type.

      • All clients in the client group must be reachable through network routes.

    4. In the Storage Policy box, select a storage policy for the backup and restore operations.

    5. In the Number of Data Backup Streams box, type the number of data streams to use for backups. The maximum value is 99.

      Note

      : The number of streams must not exceed the maximum number configured in the subclient storage policy. The CommServe allocates streams depending on the availability of resources.

  3. On the Connection Details tab, enter the following details:

    1. In the Host URL box, enter the Azure Blob Storage service account URL, for example, blob.core.windows.net.

      To back up Azure File shares in the Azure Storage service account, enter the Azure File Share URL, for example, file.core.windows.net.

    2. From the Authentication Type list, select IAM AD application.

    3. Enter the credential:

What

Steps

Existing credential

From the Credential list, select a credential for the Azure Storage service account.

New credential

  1. From the Credential list, click Create New.

    The Create user credential dialog box appears.

  2. In the Credential name box, enter a credential name for the Azure Storage service account.

  3. Under Credentials, enter the following:

    • Tenant ID: Enter the tenant ID of the Azure AD application.

    • Application Id: Enter the application ID of the Azure AD application.

    • Application Secret: Enter the client secret of the Azure AD application.

    • Environment: Select an Azure environment.

      The Commvault software pre-fills the information for the endpoints based on the environment.

  4. Click OK.

  1. In the Account name box, type the name of the Azure Blob Storage account.

  2. Click OK.

Results

The Commvault software creates an Azure Blob Storage virtual client that contains a default instance.

×

Loading...